import com.example.config.CustomHttpFirewall;
@Configuration
@EnableWebSecurity
public class SecurityConfig {
    @Bean
    public HttpFirewall httpFirewall() {
        return new CustomHttpFirewall();
    }
    @Override
    protected void configure(HttpSecurity http) throws Exception {
        http
            .authorizeRequests()
            .antMatchers("/**").permitAll()
            .and()
            .httpBasic();
    }
}